Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fgso8dfWAJbOTNTFygk_28-hcmU.roa
File: Fgso8dfWAJbOTNTFygk_28-hcmU.roa (raw, json)
Hash identifier: WL80pw7lONiXfuI3/4lHGNbehWnTahvwCk7+/MIJ6Gs=
Subject key identifier: 16:0B:28:F1:D7:D6:00:96:CE:4C:D4:C5:CA:09:3F:DB:CF:A1:72:65
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D1732B04AF77B65E57D788E3025812E20
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fgso8dfWAJbOTNTFygk_28-hcmU.roa
Signing time: Wed 17 Jan 2024 11:33:34 +0000
ROA not before: Wed 17 Jan 2024 11:33:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48314
IP address blocks: 195.133.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 10:25:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:32:b0:4a:f7:7b:65:e5:7d:78:8e:30:25:81:2e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 17 11:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=160b28f1d7d60096ce4cd4c5ca093fdbcfa17265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e0:c3:b2:17:a9:f3:29:e6:92:25:7f:7f:70:
21:de:23:17:ae:23:01:45:21:6a:f9:65:36:3f:2a:
e5:bf:c5:15:78:7c:89:0b:ce:66:d5:0c:4d:1c:95:
53:5a:ef:64:60:29:7e:49:00:e7:45:a8:95:be:cb:
b3:94:45:01:7e:70:24:71:d2:79:18:62:7a:d1:6a:
79:ad:90:68:2c:98:75:58:6d:a2:41:e7:0e:46:46:
66:7c:10:78:d8:30:dd:4a:da:6d:b5:6c:91:93:dc:
5e:e4:46:5c:79:01:f7:b7:af:a8:b3:c5:1d:5e:25:
40:b5:dd:a7:5b:ff:a7:8b:d3:94:5e:c5:ed:ab:09:
37:55:e3:d4:40:a7:f9:5a:43:b0:1a:c6:0d:96:73:
b7:51:b3:43:27:15:39:d7:54:e4:db:3d:8c:63:67:
75:b7:13:4f:3b:d4:66:96:d5:31:50:9e:d4:ab:65:
94:8f:06:30:ce:b7:44:a5:7a:41:7f:09:83:d7:59:
4a:7c:c8:6b:f7:c8:bc:fd:2d:dc:a2:9c:ec:01:1a:
3a:6e:7b:a2:7f:30:18:9a:71:44:1d:ad:f1:b5:21:
ec:37:29:5b:ef:45:27:a2:57:60:bb:fe:e4:59:60:
57:b6:88:3c:6c:8f:ec:b1:1f:2c:1f:32:6b:dd:e6:
49:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0B:28:F1:D7:D6:00:96:CE:4C:D4:C5:CA:09:3F:DB:CF:A1:72:65
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fgso8dfWAJbOTNTFygk_28-hcmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:19:32:c3:1c:58:1d:79:73:54:8a:76:5a:8e:11:fe:c7:ef:
ee:b1:c7:00:d3:b3:ce:11:62:33:13:c1:5e:4c:0a:a3:53:e8:
a0:3e:57:ad:f5:f8:fd:c6:50:61:af:17:96:b0:e7:fa:dd:2a:
92:8b:89:d2:1f:bf:50:cf:f4:6e:6e:0c:29:01:54:fc:d9:81:
a2:89:58:aa:d2:58:3b:0c:3e:47:72:5e:44:41:fa:5c:0e:b6:
f9:18:48:8d:a9:0d:1f:dd:72:35:fe:ee:ab:11:21:12:d3:31:
1f:39:2b:00:8c:c1:b7:fe:71:81:7b:78:2f:08:08:4e:80:6e:
32:85:0f:14:c9:14:7e:ca:93:71:5e:00:3d:19:43:ee:30:51:
e4:d5:e9:3a:48:df:ba:68:e9:53:41:f2:17:5e:1d:46:01:26:
a1:39:01:68:24:f6:db:28:92:b4:bd:18:b3:c3:ad:2e:35:5d:
76:39:d2:84:15:0c:85:14:80:21:4f:e9:16:6e:68:d5:72:58:
43:5e:52:21:bd:32:2a:f9:b4:28:1b:91:e8:21:a2:1e:9a:48:
8f:0e:21:3d:9b:bb:88:da:c2:cf:e7:fc:94:1d:7e:c0:02:75:
a7:8f:ad:26:e2:9e:c9:1c:ae:22:a9:bc:00:c5:d2:f3:1c:af:
d4:70:fb:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 13:46:33 2024 by rpki-client on console-fra.rpki-client.org